Apple’s latest OS upgrades have been filled with quite apparent bugs. Just yesterday, macOS High Sierra was discovered with a bug that has a very risky potential of allowing just anyone access to your system. This bug is present in macOS High Sierra 10.3.1, and is also found to be active in macOS 10.13.2 beta version. As expected, Apple has responded to the issue and has also released a fix which is available to download from the Mac App Store. Also Read - Apple removes a popular Quran app in China: Here's why
Considering the gravity of the situation, Apple advises that macOS users download the update as soon as possible. Apple said that its engineers learnt of the bug on Tuesday afternoon and was able to work on a patch within 24 hours. Also Read - Good news for iPhone loves! Apple beats Xiaomi to regain second position in global smartphone market
Apple’s statement as quoted by Reuters reads, “We greatly regret this error and we apologize to all Mac users. Our customers deserve better. We are auditing our development processes to help prevent this from happening again. Security is a top priority for every Apple product, and regrettably we stumbled with this release of Mac OS.” Also Read - Apple Music could soon release on the PlayStation 5: Report
First discovered by developer Lemi Ergin, this issue was posted on Twitter which obviously caused worry among macOS users. Devices running on earlier versions are not affected by this bug. This bug in macOS allowed anyone to enable the root user account on an unlocked Mac. The root user account allows one to have access to more files in the system. One could enable the root user account without even providing a password and thereby gain access to the system.
The process was quite simple and could be done by choosing User & Groups from System References, and clicking on the lock icon. Here, in the credential tabs, one had to simply type ‘root’ as the username and place the cursor on the password bar but leave it empty. After this clicking unlock would give user access to create a new admin account.
Apple did publish a support page detailing steps to enable or disable the root user account. It also lists steps involved in setting a password to your root user account to prevent unauthorized access.